kyverno/pkg/utils/admission/exception.go

package admission

import (
	kyvernov2 "github.com/kyverno/kyverno/api/kyverno/v2"
	admissionv1 "k8s.io/api/admission/v1"
	"k8s.io/apimachinery/pkg/util/json"
)

func UnmarshalPolicyException(raw []byte) (*kyvernov2.PolicyException, error) {
	var exception *kyvernov2.PolicyException
	if err := json.Unmarshal(raw, &exception); err != nil {
		return nil, err
	}
	return exception, nil
}

func GetPolicyExceptions(request admissionv1.AdmissionRequest) (*kyvernov2.PolicyException, *kyvernov2.PolicyException, error) {
	var empty *kyvernov2.PolicyException
	exception, err := UnmarshalPolicyException(request.Object.Raw)
	if err != nil {
		return exception, empty, err
	}
	if request.Operation == admissionv1.Update {
		old, err := UnmarshalPolicyException(request.OldObject.Raw)
		return exception, old, err
	}
	return exception, empty, nil
}
feat: add policy exception validation webhook (#5679) * feat: add policy exception validation webhook Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * handler Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * validation Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Jim Bugwadia <jim@nirmata.com> 2022-12-15 09:34:44 +01:00			`package admission`

			`import (`
chore: use v2 clients for policy exceptions (#10530) Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com> 2024-06-24 23:36:55 +07:00			`kyvernov2 "github.com/kyverno/kyverno/api/kyverno/v2"`
feat: add policy exception validation webhook (#5679) * feat: add policy exception validation webhook Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * handler Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * validation Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Jim Bugwadia <jim@nirmata.com> 2022-12-15 09:34:44 +01:00			`admissionv1 "k8s.io/api/admission/v1"`
feat: add global context entry validation webhook (#9619) * feat: add global context entry validation webhook Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com> * fix: use `k8s.io/apimachinery/pkg/util/json` instead of `encoding/json` Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com> * fix: lint Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com> --------- Signed-off-by: Vishal Choudhary <vishal.choudhary@nirmata.com> 2024-02-02 22:34:50 +05:30			`"k8s.io/apimachinery/pkg/util/json"`
feat: add policy exception validation webhook (#5679) * feat: add policy exception validation webhook Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * handler Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * validation Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Jim Bugwadia <jim@nirmata.com> 2022-12-15 09:34:44 +01:00			`)`

chore: use v2 clients for policy exceptions (#10530) Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com> 2024-06-24 23:36:55 +07:00			`func UnmarshalPolicyException(raw []byte) (*kyvernov2.PolicyException, error) {`
			`var exception *kyvernov2.PolicyException`
feat: add policy exception validation webhook (#5679) * feat: add policy exception validation webhook Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * handler Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * validation Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Jim Bugwadia <jim@nirmata.com> 2022-12-15 09:34:44 +01:00			`if err := json.Unmarshal(raw, &exception); err != nil {`
			`return nil, err`
			`}`
			`return exception, nil`
			`}`

chore: use v2 clients for policy exceptions (#10530) Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com> 2024-06-24 23:36:55 +07:00			`func GetPolicyExceptions(request admissionv1.AdmissionRequest) (kyvernov2.PolicyException, kyvernov2.PolicyException, error) {`
			`var empty *kyvernov2.PolicyException`
feat: add policy exception validation webhook (#5679) * feat: add policy exception validation webhook Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * handler Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * validation Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> Co-authored-by: Jim Bugwadia <jim@nirmata.com> 2022-12-15 09:34:44 +01:00			`exception, err := UnmarshalPolicyException(request.Object.Raw)`
			`if err != nil {`
			`return exception, empty, err`
			`}`
			`if request.Operation == admissionv1.Update {`
			`old, err := UnmarshalPolicyException(request.OldObject.Raw)`
			`return exception, old, err`
			`}`
			`return exception, empty, nil`
			`}`